Rule ID,Resource ID,Compliance,Exception Reason,Rule Level,Rule Info
"AwsSolutions-VPC7","cdk-ecs-codedeploy-ecs-deployment/VPC/Resource","Suppressed","Unrelated to construct under test","Error","The VPC does not have an associated Flow Log."
"AwsSolutions-ECS4","cdk-ecs-codedeploy-ecs-deployment/EcsCluster/Resource","Suppressed","Unrelated to construct under test","Error","The ECS Cluster has CloudWatch Container Insights disabled."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/TaskDef/TaskRole/Resource","Compliant","N/A","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/TaskDef/TaskRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-ECS2","cdk-ecs-codedeploy-ecs-deployment/TaskDef/Resource","Compliant","N/A","Error","The ECS Task Definition includes a container definition that directly specifies environment variables."
"AwsSolutions-ECS7","cdk-ecs-codedeploy-ecs-deployment/TaskDef/Resource","Suppressed","Unrelated to construct under test","Error","One or more containers in the ECS Task Definition do not have container logging enabled."
"AwsSolutions-EC23","cdk-ecs-codedeploy-ecs-deployment/FargateService/SecurityGroup/Resource","Compliant","N/A","Error","The Security Group allows for 0.0.0.0/0 or ::/0 inbound access."
"AwsSolutions-EC27","cdk-ecs-codedeploy-ecs-deployment/FargateService/SecurityGroup/Resource","Compliant","N/A","Error","The Security Group does not have a description."
"AwsSolutions-EC23","cdk-ecs-codedeploy-ecs-deployment/FargateService/SecurityGroup/from cdkecscodedeployecsdeploymentServiceLBSecurityGroup4FDF524A:80","Compliant","N/A","Error","The Security Group allows for 0.0.0.0/0 or ::/0 inbound access."
"AwsSolutions-ELB2","cdk-ecs-codedeploy-ecs-deployment/ServiceLB/Resource","Suppressed","Unrelated to construct under test","Error","The ELB does not have access logs enabled."
"AwsSolutions-EC23","cdk-ecs-codedeploy-ecs-deployment/ServiceLB/SecurityGroup/Resource","Suppressed","Unrelated to construct under test","Error","The Security Group allows for 0.0.0.0/0 or ::/0 inbound access."
"AwsSolutions-EC27","cdk-ecs-codedeploy-ecs-deployment/ServiceLB/SecurityGroup/Resource","Compliant","N/A","Error","The Security Group does not have a description."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/ServiceRole/Resource","Suppressed","Unrelated to construct under test","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/ServiceRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderOnEventLambda/ServiceRole/Resource","Suppressed","[Policy::arn:<AWS::Partition>:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole] Allow AWSLambdaBasicExecutionRole policy","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderOnEventLambda/ServiceRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderOnEventLambda/ServiceRole/DefaultPolicy/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-L1","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderOnEventLambda/Resource","Compliant","N/A","Error","The non-container Lambda function is not configured to use the latest runtime version."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderIsCompleteLambda/ServiceRole/Resource","Suppressed","[Policy::arn:<AWS::Partition>:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole] Allow AWSLambdaBasicExecutionRole policy","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderIsCompleteLambda/ServiceRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderIsCompleteLambda/ServiceRole/DefaultPolicy/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-L1","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProviderIsCompleteLambda/Resource","Compliant","N/A","Error","The non-container Lambda function is not configured to use the latest runtime version."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onEvent/ServiceRole/Resource","Suppressed","Unrelated to construct under test","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onEvent/ServiceRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onEvent/ServiceRole/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onEvent/ServiceRole/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-L1","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onEvent/Resource","Suppressed","Unrelated to construct under test","Error","The non-container Lambda function is not configured to use the latest runtime version."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-isComplete/ServiceRole/Resource","Suppressed","Unrelated to construct under test","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-isComplete/ServiceRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-isComplete/ServiceRole/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-isComplete/ServiceRole/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-L1","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-isComplete/Resource","Suppressed","Unrelated to construct under test","Error","The non-container Lambda function is not configured to use the latest runtime version."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onTimeout/ServiceRole/Resource","Suppressed","Unrelated to construct under test","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onTimeout/ServiceRole/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onTimeout/ServiceRole/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onTimeout/ServiceRole/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-L1","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/framework-onTimeout/Resource","Suppressed","Unrelated to construct under test","Error","The non-container Lambda function is not configured to use the latest runtime version."
"AwsSolutions-IAM4","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/waiter-state-machine/Role/Resource","Compliant","N/A","Error","The IAM user, role, or group uses AWS managed policies."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/waiter-state-machine/Role/Resource","Compliant","N/A","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/waiter-state-machine/Role/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."
"AwsSolutions-IAM5","cdk-ecs-codedeploy-ecs-deployment/DG/Deployment/DeploymentProvider/waiter-state-machine/Role/DefaultPolicy/Resource","Suppressed","Unrelated to construct under test","Error","The IAM entity contains wildcard permissions and does not have a cdk-nag rule suppression with evidence for those permission."